whitelist mac-address
Function
The whitelist mac-address command adds a specified MAC address to the whitelist.
The undo whitelist mac-address command deletes a MAC address from the whitelist.
By default, no MAC address is added to the whitelist. A maximum of 512 MAC addresses can be added to the whitelist.
This command can only be executed on a parent switch.
Format
whitelist mac-address mac-address1 [ to mac-address2 ]
undo whitelist mac-address { mac-address1 [ to mac-address2 ] | all }
Parameters
| Parameter | Description | Value |
|---|---|---|
| mac-address1 [ to mac-address2 ] | Specifies MAC addresses to be added to a whitelist. |
The value is in H-H-H format, where H is a hexadecimal number of 1 to 4 digits. The value cannot be all 0s, all Fs, or a multicast MAC address. |
| all | Deletes all the MAC addresses in a whitelist. |
- |
Usage Guidelines
Usage Scenario
When an SVF system needs to authenticate an AS, the SVF system allows the AS to connect to if the MAC address of the AS is in the whitelist and disallows the AS to connect to if the MAC address is in the blacklist.
Precautions
A MAC address cannot exist in both the whitelist and blacklist.
By default, if the MAC address of an AS is neither in the whitelist nor in the blacklist, the AS fails the authentication. You can run the confirm { all | mac-address mac-address } command to allow all ASs or a specified AS to pass the authentication.